Emergency Vulnerability Bulletin - 09/30/22

9/30/22 5:18 PM  |  by RedLegg Blog

Atlassian Bitbucket Server and Data Center Vulnerability

Identifier: CVE-2022-36804

Exploit or POC: Yes (Actively Being Exploited)


Description: CVE-2022-36804 allows for arbitrary code execution by transmitting malicious HTTP requests. To successfully exploit this vulnerability read permissions to a private or public Bitbucket repository is required.

Mitigation recommendation: Patching is currently the only method of mitigation

RedLegg Action: None at this time.

Get Blog Updates

Related Articles

Patch Tuesday - August 2023 96bravo

Patch Tuesday - August 2023

*Important note: These are not the only vulnerabilities that have been recently released; however, these are the ...
Emergency Security Bulletin - Citrix ADC and Citrix Gateway threat intel, 96bravo, Bulletin

Emergency Security Bulletin - Citrix ADC and Citrix Gateway

About: RedLegg will occasionally communicate vulnerabilities released outside the usual release schedule to provide ...
Critical Security Vulnerabilities Bulletin